npm - @attest-it/core - Versions diffs - 0.4.0 → 0.5.0 - Mend

@attest-it/core 0.4.0 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/dist/core-alpha.d.ts +52 -1
package/dist/core-beta.d.ts +52 -1
package/dist/core-public.d.ts +52 -1
package/dist/core-unstripped.d.ts +52 -1
package/dist/index.cjs +77 -12
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +49 -2
package/dist/index.d.ts +49 -2
package/dist/index.js +75 -13
package/dist/index.js.map +1 -1
package/package.json +1 -1

package/dist/index.d.cts CHANGED Viewed

@@ -1390,6 +1390,18 @@ declare class OnePasswordKeyProvider implements KeyProvider {
 interface MacOSKeychainKeyProviderOptions {
     /** Item name in keychain (e.g., "attest-it-private-key") */
     itemName: string;
+    /** Path to the keychain file (optional, uses default keychain if not specified) */
+    keychain?: string;
+}
+/**
+ * Information about a macOS keychain.
+ * @public
+ */
+interface MacOSKeychain {
+    /** Full path to the keychain file */
+    path: string;
+    /** Display name (filename without extension) */
+    name: string;
 }
 /**
  * Key provider that stores private keys in macOS Keychain.
@@ -1405,6 +1417,7 @@ declare class MacOSKeychainKeyProvider implements KeyProvider {
     readonly type = "macos-keychain";
     readonly displayName = "macOS Keychain";
     private readonly itemName;
+    private readonly keychain?;
     private static readonly ACCOUNT;
     /**
      * Create a new MacOSKeychainKeyProvider.
@@ -1416,6 +1429,11 @@ declare class MacOSKeychainKeyProvider implements KeyProvider {
      * Only available on macOS platforms.
      */
     static isAvailable(): boolean;
+    /**
+     * List available keychains on the system.
+     * @returns Array of keychain information
+     */
+    static listKeychains(): Promise<MacOSKeychain[]>;
     /**
      * Check if this provider is available on the current system.
      */
@@ -1506,6 +1524,7 @@ type PrivateKeyRef = {
     type: 'keychain';
     service: string;
     account: string;
+    keychain?: string;
 } | {
     type: '1password';
     account?: string;
@@ -1545,6 +1564,21 @@ interface LocalConfig {
  * @packageDocumentation
  */
+/**
+ * Set a custom home directory for attest-it configuration.
+ * This is useful for testing or running with isolated state.
+ *
+ * @param dir - The directory to use, or null to reset to default
+ * @public
+ */
+declare function setAttestItHomeDir(dir: string | null): void;
+/**
+ * Get the current attest-it home directory override.
+ *
+ * @returns The override directory, or null if using default
+ * @public
+ */
+declare function getAttestItHomeDir(): string | null;
 /**
  * Error thrown when local config validation fails.
  * @public
@@ -1556,10 +1590,23 @@ declare class LocalConfigValidationError extends Error {
 /**
  * Get the path to the local config file.
  *
- * @returns Path to ~/.config/attest-it/config.yaml
+ * If a home directory override is set via setAttestItHomeDir(),
+ * returns {homeDir}/config.yaml. Otherwise returns ~/.config/attest-it/config.yaml.
+ *
+ * @returns Path to the local config file
  * @public
  */
 declare function getLocalConfigPath(): string;
+/**
+ * Get the attest-it configuration directory.
+ *
+ * If a home directory override is set via setAttestItHomeDir(),
+ * returns that directory. Otherwise returns ~/.config/attest-it.
+ *
+ * @returns Path to the configuration directory
+ * @public
+ */
+declare function getAttestItConfigDir(): string;
 /**
  * Load and validate local config from file (async).
  *
@@ -1832,4 +1879,4 @@ declare function verifyAllSeals(config: AttestItConfig, seals: SealsFile, finger
  */
 declare const version = "0.0.0";
-export { type AttestItConfig, type AttestItSettings, type Attestation, type AttestationsFile, type Config, ConfigNotFoundError, ConfigValidationError, type CreateSealOptions, type VerifyOptions$1 as CryptoVerifyOptions, type KeyPair as Ed25519KeyPair, FilesystemKeyProvider, type FilesystemKeyProviderOptions, type FingerprintConfig, type FingerprintOptions, type FingerprintResult, type GateConfig, type Identity, type KeyGenerationResult, type KeyPaths, type KeyProvider, type KeyProviderConfig, type KeyProviderFactory, KeyProviderRegistry, type KeyProviderSettings, type KeyRetrievalResult, type KeygenOptions, type KeygenProviderOptions, type LocalConfig, LocalConfigValidationError, MacOSKeychainKeyProvider, type MacOSKeychainKeyProviderOptions, type OnePasswordAccount, OnePasswordKeyProvider, type OnePasswordKeyProviderOptions, type OnePasswordVault, type PrivateKeyRef, type ReadSignedAttestationsOptions, type Seal, type SealVerificationResult, type SealsFile, type SignOptions, SignatureInvalidError, type SignatureVerificationResult, type SuiteConfig, type SuiteVerificationResult, type TeamMember, type VerificationState, type VerificationStatus, type VerifyOptions, type VerifyResult, type WriteSignedAttestationsOptions, canonicalizeAttestations, checkOpenSSL, computeFingerprint, computeFingerprintSync, createAttestation, createSeal, findAttestation, findConfigPath, findTeamMemberByPublicKey, generateKeyPair as generateEd25519KeyPair, generateKeyPair$1 as generateKeyPair, getActiveIdentity, getAuthorizedSignersForGate, getDefaultPrivateKeyPath, getDefaultPublicKeyPath, getGate, getLocalConfigPath, getPublicKeyFromPrivate, isAuthorizedSigner, listPackageFiles, loadConfig, loadConfigSync, loadLocalConfig, loadLocalConfigSync, parseDuration, readAndVerifyAttestations, readAttestations, readAttestationsSync, readSeals, readSealsSync, removeAttestation, resolveConfigPaths, saveLocalConfig, saveLocalConfigSync, setKeyPermissions, sign$1 as sign, sign as signEd25519, toAttestItConfig, upsertAttestation, verify$1 as verify, verifyAllSeals, verifyAttestations, verify as verifyEd25519, verifyGateSeal, verifySeal, version, writeAttestations, writeAttestationsSync, writeSeals, writeSealsSync, writeSignedAttestations };
+export { type AttestItConfig, type AttestItSettings, type Attestation, type AttestationsFile, type Config, ConfigNotFoundError, ConfigValidationError, type CreateSealOptions, type VerifyOptions$1 as CryptoVerifyOptions, type KeyPair as Ed25519KeyPair, FilesystemKeyProvider, type FilesystemKeyProviderOptions, type FingerprintConfig, type FingerprintOptions, type FingerprintResult, type GateConfig, type Identity, type KeyGenerationResult, type KeyPaths, type KeyProvider, type KeyProviderConfig, type KeyProviderFactory, KeyProviderRegistry, type KeyProviderSettings, type KeyRetrievalResult, type KeygenOptions, type KeygenProviderOptions, type LocalConfig, LocalConfigValidationError, type MacOSKeychain, MacOSKeychainKeyProvider, type MacOSKeychainKeyProviderOptions, type OnePasswordAccount, OnePasswordKeyProvider, type OnePasswordKeyProviderOptions, type OnePasswordVault, type PrivateKeyRef, type ReadSignedAttestationsOptions, type Seal, type SealVerificationResult, type SealsFile, type SignOptions, SignatureInvalidError, type SignatureVerificationResult, type SuiteConfig, type SuiteVerificationResult, type TeamMember, type VerificationState, type VerificationStatus, type VerifyOptions, type VerifyResult, type WriteSignedAttestationsOptions, canonicalizeAttestations, checkOpenSSL, computeFingerprint, computeFingerprintSync, createAttestation, createSeal, findAttestation, findConfigPath, findTeamMemberByPublicKey, generateKeyPair as generateEd25519KeyPair, generateKeyPair$1 as generateKeyPair, getActiveIdentity, getAttestItConfigDir, getAttestItHomeDir, getAuthorizedSignersForGate, getDefaultPrivateKeyPath, getDefaultPublicKeyPath, getGate, getLocalConfigPath, getPublicKeyFromPrivate, isAuthorizedSigner, listPackageFiles, loadConfig, loadConfigSync, loadLocalConfig, loadLocalConfigSync, parseDuration, readAndVerifyAttestations, readAttestations, readAttestationsSync, readSeals, readSealsSync, removeAttestation, resolveConfigPaths, saveLocalConfig, saveLocalConfigSync, setAttestItHomeDir, setKeyPermissions, sign$1 as sign, sign as signEd25519, toAttestItConfig, upsertAttestation, verify$1 as verify, verifyAllSeals, verifyAttestations, verify as verifyEd25519, verifyGateSeal, verifySeal, version, writeAttestations, writeAttestationsSync, writeSeals, writeSealsSync, writeSignedAttestations };

package/dist/index.d.ts CHANGED Viewed

@@ -1384,6 +1384,18 @@ declare class OnePasswordKeyProvider implements KeyProvider {
 interface MacOSKeychainKeyProviderOptions {
     /** Item name in keychain (e.g., "attest-it-private-key") */
     itemName: string;
+    /** Path to the keychain file (optional, uses default keychain if not specified) */
+    keychain?: string;
+}
+/**
+ * Information about a macOS keychain.
+ * @public
+ */
+interface MacOSKeychain {
+    /** Full path to the keychain file */
+    path: string;
+    /** Display name (filename without extension) */
+    name: string;
 }
 /**
  * Key provider that stores private keys in macOS Keychain.
@@ -1399,6 +1411,7 @@ declare class MacOSKeychainKeyProvider implements KeyProvider {
     readonly type = "macos-keychain";
     readonly displayName = "macOS Keychain";
     private readonly itemName;
+    private readonly keychain?;
     private static readonly ACCOUNT;
     /**
      * Create a new MacOSKeychainKeyProvider.
@@ -1410,6 +1423,11 @@ declare class MacOSKeychainKeyProvider implements KeyProvider {
      * Only available on macOS platforms.
      */
     static isAvailable(): boolean;
+    /**
+     * List available keychains on the system.
+     * @returns Array of keychain information
+     */
+    static listKeychains(): Promise<MacOSKeychain[]>;
     /**
      * Check if this provider is available on the current system.
      */
@@ -1495,6 +1513,7 @@ declare class KeyProviderRegistry {
  */
 type PrivateKeyRef = {
     account: string;
+    keychain?: string;
     service: string;
     type: 'keychain';
 } | {
@@ -1539,6 +1558,21 @@ interface LocalConfig {
  * @packageDocumentation
  */
+/**
+ * Set a custom home directory for attest-it configuration.
+ * This is useful for testing or running with isolated state.
+ *
+ * @param dir - The directory to use, or null to reset to default
+ * @public
+ */
+declare function setAttestItHomeDir(dir: null | string): void;
+/**
+ * Get the current attest-it home directory override.
+ *
+ * @returns The override directory, or null if using default
+ * @public
+ */
+declare function getAttestItHomeDir(): null | string;
 /**
  * Error thrown when local config validation fails.
  * @public
@@ -1550,10 +1584,23 @@ declare class LocalConfigValidationError extends Error {
 /**
  * Get the path to the local config file.
  *
- * @returns Path to ~/.config/attest-it/config.yaml
+ * If a home directory override is set via setAttestItHomeDir(),
+ * returns {homeDir}/config.yaml. Otherwise returns ~/.config/attest-it/config.yaml.
+ *
+ * @returns Path to the local config file
  * @public
  */
 declare function getLocalConfigPath(): string;
+/**
+ * Get the attest-it configuration directory.
+ *
+ * If a home directory override is set via setAttestItHomeDir(),
+ * returns that directory. Otherwise returns ~/.config/attest-it.
+ *
+ * @returns Path to the configuration directory
+ * @public
+ */
+declare function getAttestItConfigDir(): string;
 /**
  * Load and validate local config from file (async).
  *
@@ -1826,4 +1873,4 @@ declare function verifyAllSeals(config: AttestItConfig, seals: SealsFile, finger
  */
 declare const version = "0.0.0";
-export { type AttestItConfig, type AttestItSettings, type Attestation, type AttestationsFile, type Config, ConfigNotFoundError, ConfigValidationError, type CreateSealOptions, type VerifyOptions$1 as CryptoVerifyOptions, type KeyPair as Ed25519KeyPair, FilesystemKeyProvider, type FilesystemKeyProviderOptions, type FingerprintConfig, type FingerprintOptions, type FingerprintResult, type GateConfig, type Identity, type KeyGenerationResult, type KeyPaths, type KeyProvider, type KeyProviderConfig, type KeyProviderFactory, KeyProviderRegistry, type KeyProviderSettings, type KeyRetrievalResult, type KeygenOptions, type KeygenProviderOptions, type LocalConfig, LocalConfigValidationError, MacOSKeychainKeyProvider, type MacOSKeychainKeyProviderOptions, type OnePasswordAccount, OnePasswordKeyProvider, type OnePasswordKeyProviderOptions, type OnePasswordVault, type PrivateKeyRef, type ReadSignedAttestationsOptions, type Seal, type SealVerificationResult, type SealsFile, type SignOptions, SignatureInvalidError, type SignatureVerificationResult, type SuiteConfig, type SuiteVerificationResult, type TeamMember, type VerificationState, type VerificationStatus, type VerifyOptions, type VerifyResult, type WriteSignedAttestationsOptions, canonicalizeAttestations, checkOpenSSL, computeFingerprint, computeFingerprintSync, createAttestation, createSeal, findAttestation, findConfigPath, findTeamMemberByPublicKey, generateKeyPair as generateEd25519KeyPair, generateKeyPair$1 as generateKeyPair, getActiveIdentity, getAuthorizedSignersForGate, getDefaultPrivateKeyPath, getDefaultPublicKeyPath, getGate, getLocalConfigPath, getPublicKeyFromPrivate, isAuthorizedSigner, listPackageFiles, loadConfig, loadConfigSync, loadLocalConfig, loadLocalConfigSync, parseDuration, readAndVerifyAttestations, readAttestations, readAttestationsSync, readSeals, readSealsSync, removeAttestation, resolveConfigPaths, saveLocalConfig, saveLocalConfigSync, setKeyPermissions, sign$1 as sign, sign as signEd25519, toAttestItConfig, upsertAttestation, verify$1 as verify, verifyAllSeals, verifyAttestations, verify as verifyEd25519, verifyGateSeal, verifySeal, version, writeAttestations, writeAttestationsSync, writeSeals, writeSealsSync, writeSignedAttestations };
+export { type AttestItConfig, type AttestItSettings, type Attestation, type AttestationsFile, type Config, ConfigNotFoundError, ConfigValidationError, type CreateSealOptions, type VerifyOptions$1 as CryptoVerifyOptions, type KeyPair as Ed25519KeyPair, FilesystemKeyProvider, type FilesystemKeyProviderOptions, type FingerprintConfig, type FingerprintOptions, type FingerprintResult, type GateConfig, type Identity, type KeyGenerationResult, type KeyPaths, type KeyProvider, type KeyProviderConfig, type KeyProviderFactory, KeyProviderRegistry, type KeyProviderSettings, type KeyRetrievalResult, type KeygenOptions, type KeygenProviderOptions, type LocalConfig, LocalConfigValidationError, type MacOSKeychain, MacOSKeychainKeyProvider, type MacOSKeychainKeyProviderOptions, type OnePasswordAccount, OnePasswordKeyProvider, type OnePasswordKeyProviderOptions, type OnePasswordVault, type PrivateKeyRef, type ReadSignedAttestationsOptions, type Seal, type SealVerificationResult, type SealsFile, type SignOptions, SignatureInvalidError, type SignatureVerificationResult, type SuiteConfig, type SuiteVerificationResult, type TeamMember, type VerificationState, type VerificationStatus, type VerifyOptions, type VerifyResult, type WriteSignedAttestationsOptions, canonicalizeAttestations, checkOpenSSL, computeFingerprint, computeFingerprintSync, createAttestation, createSeal, findAttestation, findConfigPath, findTeamMemberByPublicKey, generateKeyPair as generateEd25519KeyPair, generateKeyPair$1 as generateKeyPair, getActiveIdentity, getAttestItConfigDir, getAttestItHomeDir, getAuthorizedSignersForGate, getDefaultPrivateKeyPath, getDefaultPublicKeyPath, getGate, getLocalConfigPath, getPublicKeyFromPrivate, isAuthorizedSigner, listPackageFiles, loadConfig, loadConfigSync, loadLocalConfig, loadLocalConfigSync, parseDuration, readAndVerifyAttestations, readAttestations, readAttestationsSync, readSeals, readSealsSync, removeAttestation, resolveConfigPaths, saveLocalConfig, saveLocalConfigSync, setAttestItHomeDir, setKeyPermissions, sign$1 as sign, sign as signEd25519, toAttestItConfig, upsertAttestation, verify$1 as verify, verifyAllSeals, verifyAttestations, verify as verifyEd25519, verifyGateSeal, verifySeal, version, writeAttestations, writeAttestationsSync, writeSeals, writeSealsSync, writeSignedAttestations };

package/dist/index.js CHANGED Viewed

@@ -1147,6 +1147,7 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
   type = "macos-keychain";
   displayName = "macOS Keychain";
   itemName;
+  keychain;
   static ACCOUNT = "attest-it";
   /**
    * Create a new MacOSKeychainKeyProvider.
@@ -1154,6 +1155,9 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
    */
   constructor(options) {
     this.itemName = options.itemName;
+    if (options.keychain !== void 0) {
+      this.keychain = options.keychain;
+    }
   }
   /**
    * Check if this provider is available.
@@ -1162,6 +1166,32 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
   static isAvailable() {
     return process.platform === "darwin";
   }
+  /**
+   * List available keychains on the system.
+   * @returns Array of keychain information
+   */
+  static async listKeychains() {
+    if (!_MacOSKeychainKeyProvider.isAvailable()) {
+      return [];
+    }
+    try {
+      const output = await execCommand2("security", ["list-keychains"]);
+      const keychains = [];
+      const lines = output.split("\n");
+      for (const line of lines) {
+        const match = /"(.+)"/.exec(line.trim());
+        if (match?.[1]) {
+          const fullPath = match[1];
+          const filename = fullPath.split("/").pop() ?? fullPath;
+          const name = filename.replace(/\.keychain(-db)?$/, "");
+          keychains.push({ path: fullPath, name });
+        }
+      }
+      return keychains;
+    } catch {
+      return [];
+    }
+  }
   /**
    * Check if this provider is available on the current system.
    */
@@ -1174,13 +1204,11 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
    */
   async keyExists(keyRef) {
     try {
-      await execCommand2("security", [
-        "find-generic-password",
-        "-a",
-        _MacOSKeychainKeyProvider.ACCOUNT,
-        "-s",
-        keyRef
-      ]);
+      const args = ["find-generic-password", "-a", _MacOSKeychainKeyProvider.ACCOUNT, "-s", keyRef];
+      if (this.keychain) {
+        args.push(this.keychain);
+      }
+      await execCommand2("security", args);
       return true;
     } catch {
       return false;
@@ -1201,14 +1229,18 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
     const tempDir = await fs6.mkdtemp(path6.join(os2.tmpdir(), "attest-it-"));
     const tempKeyPath = path6.join(tempDir, "private.pem");
     try {
-      const base64Key = await execCommand2("security", [
+      const findArgs = [
         "find-generic-password",
         "-a",
         _MacOSKeychainKeyProvider.ACCOUNT,
         "-s",
         keyRef,
         "-w"
-      ]);
+      ];
+      if (this.keychain) {
+        findArgs.push(this.keychain);
+      }
+      const base64Key = await execCommand2("security", findArgs);
       const keyContent = Buffer.from(base64Key, "base64").toString("utf8");
       await fs6.writeFile(tempKeyPath, keyContent, { mode: 384 });
       await setKeyPermissions(tempKeyPath);
@@ -1253,7 +1285,7 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
       });
       const privateKeyContent = await fs6.readFile(tempPrivateKeyPath, "utf8");
       const base64Key = Buffer.from(privateKeyContent, "utf8").toString("base64");
-      await execCommand2("security", [
+      const addArgs = [
         "add-generic-password",
         "-a",
         _MacOSKeychainKeyProvider.ACCOUNT,
@@ -1264,7 +1296,11 @@ var MacOSKeychainKeyProvider = class _MacOSKeychainKeyProvider {
         "-T",
         "",
         "-U"
-      ]);
+      ];
+      if (this.keychain) {
+        addArgs.push(this.keychain);
+      }
+      await execCommand2("security", addArgs);
       await fs6.unlink(tempPrivateKeyPath);
       await fs6.rmdir(tempDir);
       return {
@@ -1381,6 +1417,13 @@ KeyProviderRegistry.register("macos-keychain", (config) => {
   }
   return new MacOSKeychainKeyProvider({ itemName });
 });
+var homeDirOverride = null;
+function setAttestItHomeDir(dir) {
+  homeDirOverride = dir;
+}
+function getAttestItHomeDir() {
+  return homeDirOverride;
+}
 var privateKeyRefSchema = z.discriminatedUnion("type", [
   z.object({
     type: z.literal("file"),
@@ -1389,7 +1432,8 @@ var privateKeyRefSchema = z.discriminatedUnion("type", [
   z.object({
     type: z.literal("keychain"),
     service: z.string().min(1, "Service name cannot be empty"),
-    account: z.string().min(1, "Account name cannot be empty")
+    account: z.string().min(1, "Account name cannot be empty"),
+    keychain: z.string().optional()
   }),
   z.object({
     type: z.literal("1password"),
@@ -1420,9 +1464,18 @@ var LocalConfigValidationError = class extends Error {
   }
 };
 function getLocalConfigPath() {
+  if (homeDirOverride) {
+    return join(homeDirOverride, "config.yaml");
+  }
   const home = homedir();
   return join(home, ".config", "attest-it", "config.yaml");
 }
+function getAttestItConfigDir() {
+  if (homeDirOverride) {
+    return homeDirOverride;
+  }
+  return join(homedir(), ".config", "attest-it");
+}
 function parseLocalConfigContent(content) {
   let rawConfig;
   try {
@@ -1453,6 +1506,15 @@ function parseLocalConfigContent(content) {
           },
           ...identity.privateKey.field !== void 0 && { field: identity.privateKey.field }
         };
+      } else if (identity.privateKey.type === "keychain") {
+        privateKey = {
+          type: "keychain",
+          service: identity.privateKey.service,
+          account: identity.privateKey.account,
+          ...identity.privateKey.keychain !== void 0 && {
+            keychain: identity.privateKey.keychain
+          }
+        };
       } else {
         privateKey = identity.privateKey;
       }
@@ -1836,6 +1898,6 @@ function verifyAllSeals(config, seals, fingerprints) {
 // src/index.ts
 var version = "0.0.0";
-export { ConfigNotFoundError, ConfigValidationError, FilesystemKeyProvider, KeyProviderRegistry, LocalConfigValidationError, MacOSKeychainKeyProvider, OnePasswordKeyProvider, SignatureInvalidError, canonicalizeAttestations, computeFingerprint, computeFingerprintSync, createAttestation, createSeal, findAttestation, findConfigPath, findTeamMemberByPublicKey, generateKeyPair2 as generateEd25519KeyPair, getActiveIdentity, getAuthorizedSignersForGate, getGate, getLocalConfigPath, getPublicKeyFromPrivate, isAuthorizedSigner, listPackageFiles, loadConfig, loadConfigSync, loadLocalConfig, loadLocalConfigSync, parseDuration, readAndVerifyAttestations, readAttestations, readAttestationsSync, readSeals, readSealsSync, removeAttestation, resolveConfigPaths, saveLocalConfig, saveLocalConfigSync, sign3 as signEd25519, toAttestItConfig, upsertAttestation, verifyAllSeals, verifyAttestations, verify3 as verifyEd25519, verifyGateSeal, verifySeal, version, writeAttestations, writeAttestationsSync, writeSeals, writeSealsSync, writeSignedAttestations };
+export { ConfigNotFoundError, ConfigValidationError, FilesystemKeyProvider, KeyProviderRegistry, LocalConfigValidationError, MacOSKeychainKeyProvider, OnePasswordKeyProvider, SignatureInvalidError, canonicalizeAttestations, computeFingerprint, computeFingerprintSync, createAttestation, createSeal, findAttestation, findConfigPath, findTeamMemberByPublicKey, generateKeyPair2 as generateEd25519KeyPair, getActiveIdentity, getAttestItConfigDir, getAttestItHomeDir, getAuthorizedSignersForGate, getGate, getLocalConfigPath, getPublicKeyFromPrivate, isAuthorizedSigner, listPackageFiles, loadConfig, loadConfigSync, loadLocalConfig, loadLocalConfigSync, parseDuration, readAndVerifyAttestations, readAttestations, readAttestationsSync, readSeals, readSealsSync, removeAttestation, resolveConfigPaths, saveLocalConfig, saveLocalConfigSync, setAttestItHomeDir, sign3 as signEd25519, toAttestItConfig, upsertAttestation, verifyAllSeals, verifyAttestations, verify3 as verifyEd25519, verifyGateSeal, verifySeal, version, writeAttestations, writeAttestationsSync, writeSeals, writeSealsSync, writeSignedAttestations };
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map